Manualshelf

HP VPN Firewall Appliances Attack Protection Configuration Guide

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
919293949596979899100
93
Figure 80 Statistic information
Content filtering configuration example
Network requirements
As shown in Figure 81, hosts in LAN segment 192.168.1.0/24 access the Internet through the firewall.
Security zones Trust and Untrust are configured on the device for the LAN and the Internet.
On the firewall:
Enable HTTP body filtering to block HTTP responses that carry keyword abc.
Enable HTTP java applet blocking to block java applet requests to all websites except the one with
IP address 5.5.5.5.
Enable SMTP attachment name filtering to block all emails that carry .exe attachments.
Enable FTP upload filename filtering to prevent users from uploading files that carry system in the
filenames.
Enable Telnet command word filtering to prevent users from executing commands that carry the
command keyword reboot.